From 9ece1f80f7bc2ee59b0d6b21e0bf92c913b87263 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 13 Sep 2024 05:32:19 +0000 Subject: [PATCH] build(dependencies): bump the github-actions group with 2 updates Bumps the github-actions group with 2 updates: [step-security/harden-runner](https://github.com/step-security/harden-runner) and [bridgecrewio/checkov-action](https://github.com/bridgecrewio/checkov-action). Updates `step-security/harden-runner` from 2.9.1 to 2.10.1 - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde...91182cccc01eb5e619899d80e4e971d6181294a7) Updates `bridgecrewio/checkov-action` from 12.2864.0 to 12.2871.0 - [Release notes](https://github.com/bridgecrewio/checkov-action/releases) - [Commits](https://github.com/bridgecrewio/checkov-action/compare/c9421864e014ef6b8acfa35d0bf3c7e52c13ab10...15c964c5bee933376cc576908ccfad6687718c8e) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: bridgecrewio/checkov-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/ci-generic.yml | 2 +- .github/workflows/ci.yml | 2 +- .github/workflows/docker-ci-generic.yml | 8 ++++---- .github/workflows/docker-release-generic.yml | 2 +- .github/workflows/docusaurus-release.yml | 2 +- .github/workflows/release.yml | 4 ++-- 6 files changed, 10 insertions(+), 10 deletions(-) diff --git a/.github/workflows/ci-generic.yml b/.github/workflows/ci-generic.yml index d26b6b5..899b7a0 100644 --- a/.github/workflows/ci-generic.yml +++ b/.github/workflows/ci-generic.yml @@ -51,7 +51,7 @@ jobs: permissions: contents: read steps: - - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1 + - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: disable-sudo: true egress-policy: audit diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index b956afd..a05307e 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -10,7 +10,7 @@ jobs: actionlinter: runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1 + - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: egress-policy: audit diff --git a/.github/workflows/docker-ci-generic.yml b/.github/workflows/docker-ci-generic.yml index 4aaa119..114321b 100644 --- a/.github/workflows/docker-ci-generic.yml +++ b/.github/workflows/docker-ci-generic.yml @@ -61,7 +61,7 @@ jobs: image-digest: ${{ steps.build.outputs.digest }} image-metadata: ${{ steps.build.outputs.metadata }} steps: - - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1 + - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: disable-sudo: true egress-policy: audit @@ -133,7 +133,7 @@ jobs: contents: read if: inputs.chekov-linter-enabled steps: - - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1 + - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: disable-sudo: true egress-policy: audit @@ -146,7 +146,7 @@ jobs: - name: Lint Dockerfile with Checkov id: checkov - uses: bridgecrewio/checkov-action@c9421864e014ef6b8acfa35d0bf3c7e52c13ab10 #12.2864.0 + uses: bridgecrewio/checkov-action@15c964c5bee933376cc576908ccfad6687718c8e #12.2871.0 with: directory: . framework: dockerfile @@ -219,7 +219,7 @@ jobs: if: inputs.run-frank-till-healthy-enabled needs: build steps: - - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1 + - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: disable-sudo: true egress-policy: audit diff --git a/.github/workflows/docker-release-generic.yml b/.github/workflows/docker-release-generic.yml index 2dd1f8f..2d35f69 100644 --- a/.github/workflows/docker-release-generic.yml +++ b/.github/workflows/docker-release-generic.yml @@ -48,7 +48,7 @@ jobs: image-digest: ${{ steps.build.outputs.digest }} image-metadata: ${{ steps.build.outputs.metadata }} steps: - - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1 + - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: egress-policy: audit diff --git a/.github/workflows/docusaurus-release.yml b/.github/workflows/docusaurus-release.yml index 2846784..0f2f070 100644 --- a/.github/workflows/docusaurus-release.yml +++ b/.github/workflows/docusaurus-release.yml @@ -30,7 +30,7 @@ jobs: pages: write id-token: write steps: - - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1 + - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: egress-policy: audit diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index d037c00..41c8b85 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -9,7 +9,7 @@ jobs: actionlinter: runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1 + - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: egress-policy: audit @@ -27,7 +27,7 @@ jobs: needs: - actionlinter steps: - - uses: step-security/harden-runner@5c7944e73c4c2a096b17a9cb74d65b6c2bbafbde # v2.9.1 + - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1 with: egress-policy: audit